CVE-2026-5064

HP One Agent for certain HP PC products is affected by CVE-2026-5064. The issues may allow local escalation of privilege and/or denial of service. CVSS metrics indicate a local attack with low complexity, requiring low privileges and no user interaction, potentially impacting confidentiality, int...

CVE-2025-36613

SupportAssist for Home PCs versions 4.6.3 and prior and SupportAssist for Business PCs versions 4.5.3 and prior, contains an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to unauthorized access...

CVE-2025-38738

SupportAssist for Home PCs Installer exe versions 4.8.2.29006 and prior, contains an Incorrect Privilege Assignment vulnerability in the Installer. A low privileged attacker with local access could potentially exploit this vulnerability, leading to elevation of privileges...

CVE-2025-36613

SupportAssist for Home PCs versions 4.6.3 and prior and SupportAssist for Business PCs versions 4.5.3 and prior, contains an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to unauthorized access...

CVE-2025-36613

CVE-2025-36613 concerns Dell SupportAssist for Home PCs (≤4.6.3) and SupportAssist for Business PCs (≤4.5.3). The issue is an incorrect privilege assignment that a local, low-privilege attacker could exploit to gain unauthorized access. Multiple connected sources corroborate the affected versions...

CVE-2025-38738

SupportAssist for Home PCs Installer exe versions 4.8.2.29006 and prior, contains an Incorrect Privilege Assignment vulnerability in the Installer. A low privileged attacker with local access could potentially exploit this vulnerability, leading to elevation of privileges...

PT-2024-19190 · Sound Research · Secomn64

Name of the Vulnerable Software and Affected Versions: HP PC products using the Sound Research SECOMN64 driver affected versions not specified Description: The issue concerns potential vulnerabilities in the audio package of certain HP PC products that use the Sound Research SECOMN64 driver. Thes...

The vulnerability of UEFI (BIOS) microprogramming software in Huawei personal computers allows a hacker to execute arbitrary code.

The vulnerability of UEFI BIOS in Huawei personal computers is related to the execution of operations outside the buffer in SMRAM. Exploiting this vulnerability allows an attacker to execute arbitrary code in System Management Mode SMM...

The vulnerability of UEFI (BIOS) microprogramming software in Huawei personal computers allows a hacker to execute arbitrary code.

The vulnerability of UEFI BIOS in Huawei personal computers is related to insufficient checking of exception states. Exploiting this vulnerability could allow a hacker to execute arbitrary code...

The vulnerability of UEFI (BIOS) in Huawei personal computers allows a hacker to gain unauthorized access to arbitrary functions.

The vulnerability of UEFI BIOS in Huawei’s personal computers is related to improper access control. Exploiting this vulnerability can allow a hacker to gain unauthorized access to arbitrary functions...

The vulnerability of the HP TamperLock function in microprogramming software for UEFI-based desktop computers and personal computers manufactured by Hewlett-Packard Development Company L.P. allows a intruder to circumvent security restrictions.

The vulnerability of the HP TamperLock function in microprogramming-based EFI BIOS for desktop computers and personal computers manufactured by Hewlett-Packard Development Company L.P. is related to insufficient validation of input data. Exploiting this vulnerability can allow a hacker to...

PT-2023-23937 · Intel · Hdmi Firmware Update Tool

Name of the Vulnerable Software and Affected Versions: IntelR NUC Kits NUC7i3DN, NUC7i5DN, NUC7i7DN HDMI firmware update tool software versions prior to 1.79.1.1 Description: The issue is related to an unquoted search path in the HDMI firmware update tool software, which may allow an authenticate...

CVE-2022-31635

Potential time-of-check to time-of-use TOCTOU vulnerabilities have been identified in the BIOS for certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure...

CVE-2022-31639

Potential time-of-check to time-of-use TOCTOU vulnerabilities have been identified in the BIOS for certain HP PC products, which might allow arbitrary code execution, escalation of privilege, denial of service, and information disclosure...

HP PC 安全漏洞

HP PC is a computer product of Hewlett-Packard HP, an American company. A security vulnerability exists in the HP PC BIOS. An attacker could exploit the vulnerability to execute arbitrary code, privilege escalation, denial of service, and information disclosure...

PT-2023-13367 · Dell · Dell Supportassist

Name of the Vulnerable Software and Affected Versions: Dell SupportAssist for Home PCs versions 3.11.2 and prior Description: The issue is related to an Overly Permissive Cross-domain Whitelist, which could allow an authenticated non-admin user to potentially exploit it and obtain sensitive...

HP PC 安全漏洞

HP PC is a computer product of Hewlett-Packard HP Company, USA. The HP PC has a security vulnerability that stems from a potential flaw in the BIOS UEFI firmware that could allow arbitrary code execution...

Privilege escalation

AsusSwitch.exe on ASUS personal computers running Windows sets weak file permissions, leading to local privilege escalation this also can be used to delete files within the system arbitrarily. This affects ASUS System Control Interface 3 before 3.1.5.0, and AsusSwitch.exe before 1.0.10.0...

CVE-2022-36438

Summary: CVE-2022-36438 affects ASUS System Control Interface 3 (before 3.1.5.0) and AsusSwitch.exe (before 1.0.10.0) on Windows. The issue is weak file permissions in these components, which enables local privilege escalation and could allow arbitrary file deletion within the system. Root cause:...

The vulnerability of UEFI (BIOS) software on desktop computers and personal computers manufactured by Hewlett-Packard Development Company L.P. stems from an operation that goes beyond the buffer boundaries in memory, allowing attackers to exploit their privileges.

The vulnerability of UEFI BIOS in desktop computers and personal computers manufactured by Hewlett-Packard Development Company L.P. is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...